Checkmk@1.6.0p10 Security Vulnerabilities and Issues — Checkmk@1.6.0p10 CVE List

Lucene search

Tribe29Checkmk1.6.0p10

2 matches found

CVE•added 2022/03/25 11:15 p.m.•95 views

CVE-2021-40906

CheckMK Raw Edition software (versions 1.5.0 to 1.6.0) does not sanitise the input of a web service parameter that is in an unauthenticated zone. This Reflected XSS allows an attacker to open a backdoor on the device with HTML content and interpreted by the browser (such as JavaScript or other clie...

6.1CVSS5.8AI score0.00887EPSS

CVE•added 2022/05/20 11:15 p.m.•57 views

CVE-2022-31258

In Checkmk before 1.6.0p29, 2.x before 2.0.0p25, and 2.1.x before 2.1.0b10, a site user can escalate to root by editing an OMD hook symlink.

8.2CVSS6.5AI score0.00044EPSS